Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/56045C5A383A11EEABD4D919C4F9AE02.roa
File: 56045C5A383A11EEABD4D919C4F9AE02.roa (raw, json)
Hash identifier: RgQ/9mrvs/1ukCBXKSnUuCheZj+8UlwO55zjer+AWEw=
Subject key identifier: 10:37:3C:B1:F3:CA:F0:47:67:66:18:8D:43:D9:51:D9:13:25:26:40
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: A606
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/56045C5A383A11EEABD4D919C4F9AE02.roa
Signing time: Thu 13 Feb 2025 07:52:50 +0000
ROA not before: Thu 13 Feb 2025 07:52:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 132925
IP address blocks: 36.50.4.0/23 maxlen: 24
43.249.188.0/24 maxlen: 24
43.249.189.0/24 maxlen: 24
103.135.120.0/23 maxlen: 24
103.161.12.0/23 maxlen: 24
103.169.80.0/23 maxlen: 24
103.171.56.0/23 maxlen: 24
103.172.6.0/23 maxlen: 24
103.172.12.0/23 maxlen: 24
103.172.198.0/23 maxlen: 24
103.172.224.0/23 maxlen: 24
103.172.228.0/24 maxlen: 24
103.172.229.0/24 maxlen: 24
103.173.18.0/23 maxlen: 24
103.173.48.0/23 maxlen: 24
103.173.68.0/23 maxlen: 24
103.211.170.0/23 maxlen: 24
103.233.26.0/24 maxlen: 24
103.233.27.0/24 maxlen: 24
103.236.108.0/24 maxlen: 24
103.236.109.0/24 maxlen: 24
103.236.110.0/24 maxlen: 24
103.236.111.0/24 maxlen: 24
150.129.1.0/24 maxlen: 24
210.16.101.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42502 (0xa606)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: Feb 13 07:52:50 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67ada4d2-b1cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:71:bf:0e:d5:3c:2f:f4:b5:2d:0e:07:d7:a2:
f2:5c:1b:73:12:ba:52:c5:56:cf:41:2e:c9:40:65:
f5:b8:6f:62:06:ec:34:1d:08:08:5b:88:2d:62:5a:
17:77:62:16:5e:01:ef:b1:d2:03:49:cf:89:7b:42:
e7:09:4b:40:af:d7:69:80:8a:f2:f7:94:24:5e:42:
2a:56:47:c8:cb:36:f2:f6:50:be:b1:c4:cf:55:73:
08:81:3e:9c:c3:a6:42:11:95:9d:c8:ee:d3:ba:ad:
ed:83:cd:18:89:bf:36:1b:eb:ec:6e:73:c3:1f:a5:
5b:b8:85:82:45:16:86:8a:ab:53:d4:3c:9f:24:dc:
2f:06:b1:50:c5:6e:c5:6a:de:ee:35:f7:7c:e6:69:
4e:84:7e:93:8c:94:64:f3:dc:ac:f1:d7:54:a8:76:
8f:4d:c0:ea:59:40:8c:23:9c:fe:5a:69:88:7a:09:
79:3a:ca:6b:7e:a8:b5:fe:e9:cc:f1:33:01:3f:88:
15:99:bc:c9:a2:45:25:f0:fd:5a:33:62:6c:50:4f:
36:ff:6f:81:ac:c8:c3:90:fc:91:6a:90:27:0b:2c:
13:98:f3:04:36:9d:43:fc:cf:22:a1:9c:12:86:36:
c2:90:38:b6:0d:c1:25:e5:8c:b9:74:fa:01:6a:ed:
a4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:37:3C:B1:F3:CA:F0:47:67:66:18:8D:43:D9:51:D9:13:25:26:40
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/56045C5A383A11EEABD4D919C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.4.0/23
43.249.188.0/23
103.135.120.0/23
103.161.12.0/23
103.169.80.0/23
103.171.56.0/23
103.172.6.0/23
103.172.12.0/23
103.172.198.0/23
103.172.224.0/23
103.172.228.0/23
103.173.18.0/23
103.173.48.0/23
103.173.68.0/23
103.211.170.0/23
103.233.26.0/23
103.236.108.0/22
150.129.1.0/24
210.16.101.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:1f:96:99:00:0a:df:57:34:c0:5f:98:00:d5:4d:1b:4d:7a:
4d:d9:72:35:e7:e7:eb:9d:7c:ad:bc:bf:80:d8:88:88:fe:66:
67:84:18:59:e0:46:34:89:d5:fc:2b:8b:cd:47:20:c2:db:57:
6f:6f:01:cf:6e:a1:2e:11:3e:0a:57:1e:e9:39:1e:6f:fd:64:
7f:e8:a6:1d:0f:f7:8a:7d:6e:d0:89:e2:4e:18:85:09:0e:a2:
ab:0e:c0:f9:ce:86:82:18:83:da:6d:8a:f8:be:47:8b:ab:97:
ff:77:02:40:45:b7:d4:56:ea:ce:ba:c2:1b:4e:63:3f:9d:0b:
99:bc:40:73:fe:52:46:ad:8d:a7:9f:c8:3a:e1:96:ea:f5:96:
79:e9:d2:d6:95:ca:fc:97:bf:a3:95:7e:2f:70:c1:99:83:be:
80:2b:bc:e1:51:bb:35:5b:c9:89:a2:c1:56:cd:8c:fc:d9:fc:
76:a0:1c:1b:0e:56:30:89:fb:fe:b4:b0:c3:af:95:73:63:e8:
ec:66:09:63:2f:56:b6:80:05:97:40:a8:24:90:e4:b3:0d:1d:
66:fc:3e:3e:70:23:dc:70:91:90:0a:72:1e:fd:ac:40:fc:da:
7b:7b:53:6d:cd:ca:6b:9d:c1:89:21:21:c5:41:50:47:2d:af:
94:a6:36:00
-----BEGIN CERTIFICATE-----
MIIF3zCCBMegAwIBAgIDAKYGMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4
M0UzQUJDODIzMB4XDTI1MDIxMzA3NTI1MFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG
A1UEAxMNNjdhZGE0ZDItYjFjZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALBxvw7VPC/0tS0OB9ei8lwbcxK6UsVWz0EuyUBl9bhvYgbsNB0ICFuILWJa
F3diFl4B77HSA0nPiXtC5wlLQK/XaYCK8veUJF5CKlZHyMs28vZQvrHEz1VzCIE+
nMOmQhGVncju07qt7YPNGIm/Nhvr7G5zwx+lW7iFgkUWhoqrU9Q8nyTcLwaxUMVu
xWre7jX3fOZpToR+k4yUZPPcrPHXVKh2j03A6llAjCOc/lppiHoJeTrKa36otf7p
zPEzAT+IFZm8yaJFJfD9WjNibFBPNv9vgazIw5D8kWqQJwssE5jzBDadQ/zPIqGc
EoY2wpA4tg3BJeWMuXT6AWrtpMkCAwEAAaOCAwIwggL+MB0GA1UdDgQWBBQQNzyx
88rwR2dmGI1D2VHZEyUmQDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI
IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr
aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3
MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y
eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr
aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3
MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB
/wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu
aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF
BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzU2MDQ1QzVB
MzgzQTExRUVBQkQ0RDkxOUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6
Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcBBwEB
/wR8MHoweAQCAAEwcgMEASQyBAMEASv5vAMEAWeHeAMEAWehDAMEAWepUAMEAWer
OAMEAWesBgMEAWesDAMEAWesxgMEAWes4AMEAWes5AMEAWetEgMEAWetMAMEAWet
RAMEAWfTqgMEAWfpGgMEAmfsbAMEAJaBAQMEANIQZTANBgkqhkiG9w0BAQsFAAOC
AQEAjR+WmQAK31c0wF+YANVNG016TdlyNefn6518rby/gNiIiP5mZ4QYWeBGNInV
/CuLzUcgwttXb28Bz26hLhE+Clce6Tkeb/1kf+imHQ/3in1u0IniThiFCQ6iqw7A
+c6GghiD2m2K+L5Hi6uX/3cCQEW31FbqzrrCG05jP50LmbxAc/5SRq2Np5/IOuGW
6vWWeenS1pXK/Je/o5V+L3DBmYO+gCu84VG7NVvJiaLBVs2M/Nn8dqAcGw5WMIn7
/rSww6+Vc2Po7GYJYy9WtoAFl0CoJJDksw0dZvw+PnAj3HCRkApyHv2sQPzae3tT
bc3Ka53BiSEhxUFQRy2vlKY2AA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 01:52:38 2025 by rpki-client